Phishing attack impersonates Amazon Web Service to steal user credentials

For those who are not familiar with the term phishing, let me give an brief idea about what it is and how it impacts our daily life first!

Phishing is one type of cyber crime that uses disguised email as a medium of theft. Their goal is to trick the email recipient into believing that the message is something they want or need — a request from the bank, for instance, or a note from someone in their company — and to click a link or download an attachment.

What really distinguishes phishing is the form the message takes: the attackers masquerade as a trusted entity of some kind, often a real or plausibly real person, or a company the victim might do business with.

It’s one of the oldest types of cyber-attacks, dating back to the 1990s, and it’s still one of the most widespread and pernicious, with phishing messages and techniques becoming increasingly sophisticated.


During this pandemic, when the most of us are working remotely and are concerned about the Covid-19 impact, the cyber attackers has chosen this time as a preferred time to make our life a hell. As cloud services are experiencing a surge in demand, the cyber criminals find this domain lucrative and try to make us fool. A report has been published recently about it in few of the popular forums. The emails spoof an automated notification from AWS to try to capture Amazon account credentials, according to Abnormal Security.

Phishing attack impersonates Amazon Web Service to steal user credentials” to see the detailed report.